Paradigmatic and Exploration of Blind Worm
Journal Title: INTERNATIONAL JOURNAL OF ENGINEERING TRENDS AND TECHNOLOGY - Year 2012, Vol 3, Issue 3
Abstract
Active worms pose major security threats to the Internet. This is due to the ability of active worms to propagate in an automated fashion as they continuously compromise computers on the Internet. Active worms evolve during their propagation and thus pose great challenges to defend against them. In this paper, we investigate a new class of active worms, referred to as Tarnen Worm (C-Worm in short). The C-Worm is different from traditional worms because of its ability to intelligently manipulate its scan traffic volume over time. Thereby, the C-Worm camouflages its propagation from existing worm exploration systems based on analyzing the propagation traffic generated by worms. We analyze characteristics of the C-Worm and conduct a comprehensive comparison between its traffic and non-worm traffic (background traffic). We observe that these two types of traffic are barely distinguishable in the time domain. However, their distinction is clear in the frequency domain, due to the recurring manipulative nature of the C-Worm. Motivated by our observations, we design a novel spectrum-based scheme to detect the C-Worm. Our scheme uses the Power Spectral Density (PSD) distribution of the scan traffic volume and its corresponding Spectral Flatness Measure (SFM) to distinguish the C-Worm traffic from background traffic. Using a comprehensive set of exploration metric s and real-world traces as background traffic, we conduct extensive performance evaluations on our proposed spectrum-based exploration scheme. The performance data clearly demonstrates that our scheme can effectively detect the C-Worm propagation. Furthermore, we show the generality of our spectrum-based scheme in effectively detecting not only the C-Worm, but traditional worms as well.
Authors and Affiliations
Yellamandaiah Gogula1, E. Jhansi Rani
Keywords
Related Articles
- EP ID EP151302
- DOI -
- Views 77
- Downloads 0
Monitoring and Control System for Industrial Parameters Using Can Bus
In modern industrial production, the working temperature change reflects the operating status of equipments and change of many physical characteristics. So the temperature is an important parameter, which needs to be mon...
A Study on Utilization Aspects of Stone Chips as an Aggregate Replacement in Concrete in Indian Context
The high consumption of raw materials by the construction sector, results in chronic shortage of building materials and the associated environmental damage. In the last decade, construction industry has been conduc...
A Review of Wireless Sensor Network on Localization Techniques
Wireless Sensor Network is a type of wireless network which consists of a collection of tiny device called sensor node. Wireless Sensor Network is one of the rapidly developing areas. Applications of Wireless Senso...
Design and Development of a Hand-glove Controlled Wheel Chair Based on MEMS
This paper presents the Design And evelopment of a Hand-glove controlled wheel chair based on MEMS. This paper purpose of life in the lives of disabled people based on MEMS, The aim at incorporating the modern...
Real-Time Traffic Analysis and Routing System (RTARS) Using Wireless Computer Networks
The continuously increasing traffic and congestion on the roadways, have become one of the major concerns of today. Being stuck in traffic or start-stop driving associated with traffic congestion, is one of the maj...